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DETAILED ACTION 

Claims 1-12, 14-22, 24-30 are pending. 

Below, Examiner has pointed out particular references contained in the prior 
art(s) of record in the body of this action for the convenience of the applicant. Although 
the specified citations are representative of the teachings in the art and are applied to 
the specific limitations within the individual claims, other passages and figures may 
apply as well. Applicant should consider the entire prior art as applicable as to the 
limitations of the claims. It is respectfully requested from the applicant, in preparing the 
response, to consider fully each reference in its entirety as potentially teaching all or 
part of the claimed invention, as well as the context of the passage as taught by the 
prior arts or disclosed by the examiner. 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

1. Claims 1-3, 5-13, 15-23, and 25-30 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Cannon et al. (US 2004/0010696), hereafter "Cannon", in view 
of Hanna et al. (US 6,801,998), hereafter "Hanna," in view of "Login-less Simplified 
Transaction Tool", hereafter "IBM". 
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Considering Claim 1 and 21, Cannon discloses A method of sending an identity 
information document from an initiating system to an intended receiving system 
(abstract), comprising: wherein the presenting the list of identity information for selection 
allows the principal to control the disclosure of identity information to the intended 
receiving system ([0057] lines 7-20, [0058], the identity information is selected based 
upon which application the identity document is being used with); selecting identity 
information from the list of identity information from [[a]] the self- identity information 
store stored in a memory for inclusion in the identity information document ([0057] lines 
7-20, [0058], the identity information is selected based upon which application the 
identity document is being used with), wherein the selected identity information 
comprises a subset of identity information relating to the principal in the self-identity 
information store and wherein the subset of identity information is specific to a recipient 
the intended receiving system ([0071] lines 7-10); reading the selected identity 
information from the self-identity information store ([0057 lines 7-20); 
generating the identity information document to include the selected identity information 
and at least a first key ([0064] lines 1-9), the identity information document signed using 
a second key associated with the first key in the identity information document ([0064] 
lines 1-9); and sending the identity information document to the receiving system 
([0064] lines 8-17). 

Cannon does not explicitly disclose presenting a list of identity information from a self- 
identity information store for a principal using the initiating system to select information 
to include in the identity information document based on the intended receiving system. 
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Hanna discloses presenting a list of identity information from a self-identity information 
store for a principal using the initiating system to select information to include in the 
identity information document based on the intended receiving system (column 5- lines 
29-56). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the teachings of Cannon by presenting a list of 
identity information from a self-identity information store for a principal using the 
initiating system to select information to include in the identity information document 
based on the intended receiving system as taught by Hanna in order to determine the 
identification of the group or groups having the right to perform the requested service 
(Hanna- column 5- lines 31-33). 

The combination does not explicitly disclose the document is sent to establish an 
identity of the principal at the recipient. Although, it is inherent that a user had to be 
previously registered and verified with the IDSP. 

IBM discloses the document is sent to establish an identity of the principal at the 
recipient fl| 2-3). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the teachings of Cannon by using the described 
technique to register users as taught by IBM to eliminate the whole process of the 
applicant having to logon to the system (IBM- If 1). 

Considering Claim 11, Cannon discloses a system to send an identity 
information document (abstract) comprising: a processor (Fig. 3- item 330); a 
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communication channel connected with the processor ([0056] lines 10-13, Fig. 6B- item 
603); and a memory coupled with and readable by the processor (Fig. 6B- item 624), 
the memory containing a series of instructions that, when executed by the processor, 
cause the processor to select identity information from a self-identity information store 
for inclusion in the identity information document ([0057] lines 7-20, [0058], the identity 
information is selected based upon which application the identity document is being 
used with), the selected identity information comprises a predetermined subset of 
identity information relating to the principal in the self-identity information store and 
wherein the predetermined subset of identity information is specific to an intended 
recipient ([0071] lines 7-10), read the selected identity information from a self-identity 
information store ([0057 lines 7-20), generate the identity information document to 
include the selected identity information and at least a first key ([0064] lines 1-9), the 
identity information document signed using a second key paired with the first key 
([0064] lines 1-9); and send the identity information document to the recipient connected 
to the communication channel ([0064] lines 8-17). 

Cannon does not explicitly disclose the subset of identity information is automatically 
selected for inclusion in the identity information document. 

Hanna discloses the subset of identity information is automatically selected for inclusion 
in the identity information document (column 5- lines 29-56). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the teachings of Cannon by the subset of identity 
information is automatically selected for inclusion in the identity information document 
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as taught by Hanna in order to determine the identification of the group or groups 
having the right to perform the requested service (Hanna- column 5- lines 31-33). 
The combination does not explicitly disclose the document is sent to establish an 
identity of the principal at the recipient. Although, it is inherent that a user had to be 
previously registered and verified with the IDSP. 

IBM discloses the document is sent to establish an identity of the principal at the 
recipient (If 2-3). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the combination by using the described 
technique to register users as taught by IBM to eliminate the whole process of the 
applicant having to logon to the system (IBM- U 1). 

Considering Claims 2, 3, 12, 13, 22, and 23, the combination of Cannon and 
IBM discloses selecting identity information comprises selecting a subset of identity 
information from the self-identity information store based on user input from a Graphical 
User Interface (GUI) (IBM - ]f 2: user inputs information using HTML form). 

Considering Claims 4, 14, and 24, the combination of Cannon and IBM 
discloses generating an identity document comprises encoding the selected 
identification information in an extensible Mark-up Language (XML) document (IBM- If 
3). 

Considering Claims 5, 15, and 25, the combination of Cannon and IBM 
discloses the selected identity information comprises identity claims of a principal 
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originating the identity information document (Cannon- [0065] lines 1-7, Fig. 8- item 602, 
[0071] lines 7-10, IBM-H2). 

2. Claims 6, 16, and 26 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Cannon, Hanna, and IBM in view of Lortz (US 2003/0115342), hereafter "Lortz". 

Considering Claims 6, 16, and 26, the combination of Cannon and IBM does not 
explicitly disclose the selected identity information comprises use policies for defining 
uses to which the contents of the identity information may be put. 

Lortz discloses the selected identity information comprises use policies for 
defining uses to which the contents of the identity information may be put ([0018], 
[0025]). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the identity information created by the 
combination of Cannon and IBM to include use policies to help facilitate the need for E- 
Commerce and other organizations the capability to delegate limited privileges to a third 
party without revealing the identity of the third party, while still providing confidentiality, 
authentication, integrity, and non-repudiation (Lortz- [0008] lines 15-19). 

3. Claims 7-10, 17-20, and 27-30 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Cannon and IBM in view of Fischer (US 6,216,229), hereafter 
"Fischer" in further view of Kamperschroer (US 6,434,399), hereafter "Kamperschroer". 

Considering Claims 7, 17, and 27, the combination of Cannon and IBM 
discloses a system to receive an identity information document at a recipient from an 
originator for use in future recognition of the originator (IBM- H 1 , H 4) comprising: a 
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processor (Cannon- [0061] lines 1-6, Fig 6B- item 605); a communication channel 
connected with the processor (Cannon- [0056] lines 10-13, Fig. 6B- item 603); and a 
memory coupled with and readable by the processor (Cannon- Fig 6B- item 636), the 
memory containing a series of instructions that, when executed by the processor, cause 
the processor to receive a signed identity information document from an originator 
(Cannon- [0064] lines 8-9, IBM- 3-4), wherein the signed identity information 
document contains selected identity information comprising a subset of identity 
information relating to the originator in the self identity information store and wherein the 
subset of identity information in specific to the recipient (Cannon- [0057], [0058], [0071] 
lines 7-10), determine whether identity information in the identity information document 
is reliable (IBM- U 3), and save the identity information in a recognized identity 
information store if the identity information is determined to be reliable (IBM- 3- the 
user is registered to the database), the recognized identity information store being used 
for future recognition of the originator (IBM- % 3-4). 

The combination of Cannon and IBM does not explicitly disclose to determine whether 
to verify the identity information if the identity information is not reliable. 
Fischer discloses determine whether to verify the identity information if the identity 
information is not reliable (column n- lines 18-35). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the combination of Cannon and IBM by 
determining whether to verify the identity information if the identity information is not 
reliable as taught by Fischer for the benefit of increasing the security of the system. 
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More reliable or more authenticated credential documentation may be required together 
with any other information necessary to confirm the identity of the applicant (Fischer- 
column 11- lines 48-51). 

The combination does not explicitly disclose if the identity information is not reliable, 
save the identity information in the recognized identity information store with a flag 
indicating the identity information is not reliable. 

Kaperschroer discloses if the identity information is not reliable, save the identity 
information in the recognized identity information store with a flag indicating the identity 
information is not reliable (column 10- lines 53-57, Fig. 7, Fig. 8). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to modify the combination by saving the identity 
information in the recognized identity information store with a flag indicating the identity 
information is not reliable as taught by Kamperschoer for the benefit of when this logon 
procedure miscarries, then this base station, for example, is marked "invlaid" in a list 
and the same procedure, including the logon procedure is implemented with a different 
base station (Kamperschoer- column 9- lines 35-39). 

Considering Claims 8, 18, and 28, the combination discloses responsive to 
determining to verify the identity information (Fischer- column 11- lines 31-35), receiving 
an Identification Recognition Number (IRN)from the initiator of the identity information 
document (Fischer- Fischer- column 1 1- lines 35-54), determining whether the IRN is 
correct (Fischer- column 1 1 - lines 65-67, column 1 2- lines 1 -4) and, responsive to the 
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IRN being correct, saving the identity information in the recognized identity information 
store (IBM- If 3). 

Considering Claims 9, 19, and 29, the combination discloses determining 
whether the identity information is reliable is based on a user input through a graphical 
user interface (Fischer- column 11- lines 35-54). 

Considering Claims 10, 20, and 30, the combination does not explicitly disclose 
determining whether to verify the identity information is based on a user input through a 
graphical user interface. Fischer suggests a trustee determines whether an applicant 
appears to be legitimate (column 11- lines 3-6). 

Official notice is taken that it would have been obvious and was well known in the 
art at the time of the invention to receive an input from a user into a graphical user 
interface. In view of the combination, one would have been motivated to allow user 
input to determine if a user was legitimate or if more information was required to ensure 
the correct identity of the user (Fischer- column 11- lines 48-51 ) 

Response to Arguments 

Applicant's arguments with respect to claims 1,11, and 21 have been considered 
but are moot in view of the new ground(s) of rejection. 

Regarding Claims 7, 17, and 27, applicant's arguments have been fully 
considered but are not persuasive. With respect to applicants argument that the 
combination fails to disclose "selecting identity information from a self-identity 
information store for inclusion in the identity information document, wherein the selected 
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identity information comprises a subset of identity information relating to the principal in 
the self-identity information store." Examiner disagrees and directs the application to 
Cannon [0057], [0058], [0071]. Cannon discloses "Memory, among other things, stores 
data such as sample print data, reference print data, identity data, individual private key, 
sample minutia data, and/or reference minutia data. (i.e. the superset of data) Different 
combinations of all or part of this data may be stored depending upon a particular 
application of the present invention." "The content of a print document or an identity 
document can vary and depends upon the particular application of the present 
invention." (i.e. the subset of data) Cannon further discloses "Identity data 712 can be 
any type of data associated with individual 601 including but not limited to name, email 
address, password/user name, social security number or any other identifying 
information." (i.e. information relating to the principal). Therefore, the combination 
discloses "selecting identity information from a self-identity information store for 
inclusion in the identity information document, wherein the selected identity information 
comprises a subset of identity information relating to the principal in the self-identity 
information store". The ability to select different pieces of identity information reads on 
selecting a subset. 

Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection 
presented in this Office action. Accordingly, THIS ACTION IS MADE FINAL. See 



Application/Control Number: 10/693,172 Page 12 

Art Unit: 2435 

MPEP § 706.07(a). Applicant is reminded of the extension of time policy as set forth in 
37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Randal D. Moran whose telephone number is 571-270- 
1255. The examiner can normally be reached on M-F: 7:00 - 4:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on 571-272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/R. D. M./ 

Examiner, Art Unit 2435 
8/27/2009 



/Beemnet W Dada/ 

Primary Examiner, Art Unit 2435 



